DevOps Architect

Job purpose

Founded in 2007 by the creators of Kali Linux, OffSec (formerly known as Offensive Security) is the leading provider of continuous professional and workforce development, training, and education for cybersecurity practitioners. OffSec’s distinct pedagogy and practical, hands-on learning help organizations fill the InfoSec talent gap by training their teams on today’s most critical skills.

Become a part of our global presence and work from anywhere.

With team members in over 40 countries, we believe in inspiring people of all backgrounds and communities. The OffSec team is composed of diverse, internationally published authors, conference speakers, and seasoned information technology professionals from both the private sector and governments worldwide.

Excited about our mission and what we do? Apply and join us!

Summary

OffSec is seeking an experienced DevOps Architect to join our team and lead the design and implementation of complex, scalable lab environments that power our industry-leading cybersecurity training and certification programs. This senior-level position will work closely with Security Researchers and Architects to architect sophisticated labs and vulnerable machine environments across both cloud and on-premises infrastructure, enabling hands-on learning experiences for CyberSecurity professionals worldwide.

The ideal candidate will bring deep expertise in cloud platforms and virtualization technologies and how they interact in a mixed cloud/on-prem infrastructure, as well as modern DevOps practices to design resilient, scalable, and secure lab environments that can support thousands of concurrent users while maintaining the realistic attack scenarios our students depend on.

Duties and responsibilities

Infrastructure Architecture Design

• Design and architect complex, multi-tier lab environments supporting vulnerable machines and realistic attack scenarios
• Develop scalable infrastructure solutions across AWS, Azure, and Google Cloud Platform
• Create hybrid cloud architectures that seamlessly integrate on-premises VMware and OpenStack environments
• Design network topologies and security boundaries that support both realistic offensive cyber activities as well as hosting networks infected with real world malware
• Establish infrastructure standards, patterns, and best practices for lab environment deployment

Collaboration Technical Leadership

• Partner closely with Lead Platform and Content Engineers to understand technical requirements for new lab environments and vulnerable machines
• Translate educational objectives into robust technical infrastructure requirements
• Provide technical guidance and mentorship to development and operations teams
• Lead architectural reviews and technical decision-making processes
• Drive adoption of infrastructure-as-code and automated deployment practices

Platform Engineering Automation

• Design and implement CI/CD pipelines using GitLab for automated deployment of lab environments
• Develop infrastructure automation using tools like Terraform, Ansible, and CloudFormation
• Create self-service capabilities for Content Engineers to deploy and manage lab resources
• Implement monitoring, logging, and observability solutions for lab environments
• Establish disaster recovery and business continuity procedures

Cloud Virtualization Management

• Architect and optimize multi-cloud deployments across AWS, Azure, and GCP
• Design and manage VMware vSphere and OpenStack private cloud environments
• Implement cloud cost optimization strategies and resource governance policies
• Ensure security and compliance across all cloud and virtualization platforms
• Design and implement backup and snapshot strategies for lab environments

Network Architecture Security

• Design complex network architectures including VPNs, VLANs, and software-defined networking
• Implement network segmentation and security controls appropriate for vulnerable lab environments
• Configure and manage load balancers, firewalls, and network security appliances
• Design network monitoring and traffic analysis capabilities
• Ensure proper isolation between student lab environments

Qualifications

Technical Expertise

• Cloud Platforms: 5+ years of hands-on experience with AWS, Azure, and Google Cloud Platform
• Virtualization: Expert-level knowledge of OpenStack and VMware vSphere
• Networking: Deep understanding of TCP/IP, routing protocols, VPNs, firewalls, and network security
• CI/CD: Extensive experience with GitLab CI/CD pipelines and infrastructure automation
• Infrastructure as Code: Proficiency with Terraform, CloudFormation, ARM templates, and configuration management tools
• Containerization: Experience with Docker, Kubernetes, and container orchestration
• Operating Systems: Advanced knowledge of Linux, Windows server and Active Directory administration

Professional Experience

• 8+ years of experience in DevOps, Site Reliability Engineering, or Infrastructure Architecture roles
• 3+ years in a senior or lead technical role with architectural responsibilities
• Proven track record of designing and implementing large-scale, distributed systems
• Experience with high-availability and disaster recovery implementations
• Background in cybersecurity, penetration testing, or vulnerability research environments (preferred)

Leadership Communication

• Strong project management and technical leadership skills
• Excellent communication abilities with both technical and non-technical stakeholders
• Experience mentoring junior engineers and driving technical standards
• Ability to translate business requirements into technical solutions

Preferred Qualifications

• Bachelor's degree in Computer Science, Engineering, or related technical field
• Industry certifications such as AWS Solutions Architect, Azure Solutions Architect, or VMware VCP
• Experience with cybersecurity tools and vulnerable application deployment
• Experience with monitoring tools like Prometheus, Grafana, ELK stack
• Familiarity with Offensive Security's training platforms and methodologies
• Open source contributions or technical writing experience

Working conditions

This role is a full-time position. Work hours for this position are flexible and will be performed from a home office.

Direct reports

This position has no direct reports.

OffSec provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.